archive
/
windows-server-2003
mirror of https://github.com/selfrender/Windows-Server-2003
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Leaked source code of windows server 2003
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3 Commits
1 Branch
0 Tags
1.5 GiB
Tree: 827363a95b
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '827363a95b'
${ noResults }
windows-server-2003/inetcore/winhttp/v5/inc/certcach.hxx

286 lines
6.0 KiB
Raw Normal View History

commiting as it is
4 years ago
  1. /*++
  3. Copyright (c) 1996 Microsoft Corporation
  5. Module Name:
  7. certcach.hxx
  9. Abstract:
  11. Contains class definition for certificate cache object.
  12. The class acts a container for common certificates.
  14. Contents:
  15. SECURITY_CACHE_LIST
  16. SECURITY_CACHE_LIST_ENTRY
  18. Author:
  20. Arthur L Bierer (arthurbi) 20-Apr-1996
  22. Revision History:
  24. 20-Apr-1996 arthurbi
  25. Created
  27. --*/
  30. //
  31. // SECURITY_INFO_LIST_ENTRY - contains all security info
  32. // pertaining to all connections to a server.
  33. //
  35. class SECURITY_CACHE_LIST_ENTRY {
  37. friend class SECURITY_CACHE_LIST;
  39. private:
  41. //
  42. // _List - Generic List entry structure.
  43. //
  45. LIST_ENTRY _List;
  47. //
  48. // _cRef - Reference count for this element.
  49. //
  51. LONG _cRef;
  53. //
  54. // _CertInfo - Certificate and other security
  55. // attributes for the connection to
  56. // this machine.
  57. //
  59. INTERNET_SECURITY_INFO _CertInfo;
  61. //
  62. // _dwSecurityFlags - Overrides for warnings.
  63. //
  65. DWORD _dwSecurityFlags;
  67. //
  68. // _dwStatusFlags - Tracker for all secure connection failure flags.
  69. //
  71. DWORD _dwStatusFlags;
  73. //
  74. // _ServerName - The name of the server
  75. //
  77. ICSTRING _ServerName;
  79. //
  80. // _pCertChainList - If there is Client Authentication do be done with this server,
  81. // then we'll cache it and remeber it later.
  82. //
  84. CERT_CONTEXT_ARRAY *_pCertContextArray;
  86. //
  87. // _fInCache - indicates this element is held by the cache
  88. //
  90. BOOL _fInCache;
  92. #if INET_DEBUG
  93. DWORD m_Signature;
  94. #endif
  96. public:
  98. LONG AddRef(VOID);
  99. LONG Release(VOID);
  101. //
  102. // Cleans up object, so it can be reused
  103. //
  105. BOOL InCache() { return _fInCache; }
  107. VOID
  108. Clear();
  110. SECURITY_CACHE_LIST_ENTRY(
  111. IN LPSTR lpszHostName
  112. );
  114. ~SECURITY_CACHE_LIST_ENTRY();
  116. //
  117. // Copy CERT_INFO IN Method -
  118. // copies a structure into our object.
  119. //
  121. SECURITY_CACHE_LIST_ENTRY& operator=(LPINTERNET_SECURITY_INFO Cert)
  122. {
  124. if(_CertInfo.pCertificate)
  125. {
  126. WRAP_REVERT_USER_VOID(CertFreeCertificateContext,
  127. (_CertInfo.pCertificate));
  128. }
  129. _CertInfo.dwSize = sizeof(_CertInfo);
  130. WRAP_REVERT_USER(CertDuplicateCertificateContext,
  131. (Cert->pCertificate),
  132. _CertInfo.pCertificate);
  133. _CertInfo.dwProtocol = Cert->dwProtocol;
  135. _CertInfo.aiCipher = Cert->aiCipher;
  136. _CertInfo.dwCipherStrength = Cert->dwCipherStrength;
  137. _CertInfo.aiHash = Cert->aiHash;
  138. _CertInfo.dwHashStrength = Cert->dwHashStrength;
  139. _CertInfo.aiExch = Cert->aiExch;
  140. _CertInfo.dwExchStrength = Cert->dwExchStrength;
  142. return *this;
  143. }
  145. //
  146. // Copy CERT_INFO OUT Method -
  147. // need to copy ourselves out.
  148. //
  150. VOID
  151. CopyOut(INTERNET_SECURITY_INFO &Cert)
  152. {
  153. Cert.dwSize = sizeof(Cert);
  154. WRAP_REVERT_USER(CertDuplicateCertificateContext,
  155. (_CertInfo.pCertificate),
  156. Cert.pCertificate);
  157. Cert.dwProtocol = _CertInfo.dwProtocol;
  159. Cert.aiCipher = _CertInfo.aiCipher;
  160. Cert.dwCipherStrength = _CertInfo.dwCipherStrength;
  161. Cert.aiHash = _CertInfo.aiHash;
  162. Cert.dwHashStrength = _CertInfo.dwHashStrength;
  163. Cert.aiExch = _CertInfo.aiExch;
  164. Cert.dwExchStrength = _CertInfo.dwExchStrength;
  165. }
  167. //
  168. // Sets and Gets the Client Authentication CertChain -
  169. // we piggy back this pointer into the cache so we can cache
  170. // previously generated and selected client auth certs.
  171. //
  173. VOID SetCertContextArray(CERT_CONTEXT_ARRAY *pCertContextArray) {
  174. if (_pCertContextArray) {
  175. delete _pCertContextArray;
  176. }
  177. _pCertContextArray = pCertContextArray;
  178. }
  180. CERT_CONTEXT_ARRAY * GetCertContextArray() {
  181. return _pCertContextArray;
  182. }
  184. DWORD GetSecureFlags() {
  185. return _dwSecurityFlags;
  186. }
  188. VOID SetSecureFlags(DWORD dwFlags) {
  189. _dwSecurityFlags |= dwFlags;
  190. }
  192. VOID ClearSecureFlags(DWORD dwFlags) {
  193. _dwSecurityFlags &= (~dwFlags);
  194. }
  196. DWORD GetStatusFlags(VOID)
  197. {
  198. return _dwStatusFlags;
  199. }
  201. VOID SetStatusFlags(DWORD dwFlags)
  202. {
  203. _dwStatusFlags |= dwFlags;
  204. }
  206. VOID ClearStatusFlags(DWORD dwFlags)
  207. {
  208. _dwStatusFlags &= (~dwFlags);
  209. }
  211. };
  215. class SECURITY_CACHE_LIST {
  217. private:
  219. //
  220. // _List - serialized list of SECURITY_CACHE_LIST_ENTRY objects
  221. //
  223. SERIALIZED_LIST _List;
  225. #if INET_DEBUG
  226. DWORD m_Signature;
  227. #endif
  229. public:
  231. SECURITY_CACHE_LIST_ENTRY *
  232. Find(
  233. IN LPSTR lpszHostname
  234. );
  236. VOID Initialize(VOID) {
  237. InitializeSerializedList(&_List);
  238. #if INET_DEBUG
  239. m_Signature = 0x4c436553; // "SeCL"
  240. #endif
  241. }
  243. VOID Terminate(VOID) {
  245. DEBUG_ENTER((DBG_OBJECTS,
  246. None,
  247. "SECURITY_CACHE_LIST::Terminate",
  248. "{%#x}",
  249. this
  250. ));
  252. ClearList();
  254. TerminateSerializedList(&_List);
  256. DEBUG_LEAVE(0);
  257. }
  259. VOID
  260. ClearList(
  261. VOID
  262. );
  264. DWORD
  265. Add(
  266. IN SECURITY_CACHE_LIST_ENTRY * entry
  267. );
  269. #if 0
  271. BOOL
  272. IsCertInCache(
  273. IN LPSTR lpszHostname
  274. )
  275. {
  276. SECURITY_CACHE_LIST_ENTRY *entry =
  277. Find(lpszHostname);
  279. if ( entry )
  280. return TRUE;
  282. return FALSE;
  283. }
  284. #endif
  286. };